- Details
- Written by: Merticaru Dorin Nicolae
- Category: Cyber Security News
- Hits: 205
- New extortion scam threatens to damage sites’ reputation, leak data. (to the original material)
- Android phone owner accidentally finds a way to bypass lock screen. (to the original material)
- $1 billion of FTX customer funds have vanished, Reuters reported. (to the original material)
- Malicious app in the Play Store spotted distributing Xenomorph Banking Trojan. (to the original material)
- Canadian supermarket chain giant Sobeys suffered a ransomware attack. (to the original material)
- Containers: The ultimate Trojan horse. (to the original material)
- Details
- Written by: Merticaru Dorin Nicolae
- Category: Cyber Security News
- Hits: 233
- Press release: The European Parliament adopted new legislative rules to strengthen the cyber resilience of the entire European Union – NIS2 and DORA. (to the original material)
- Cybersecurity Threats Fast-Forward 2030: Fasten your Security-Belt Before the Ride! (to the original material)
- New infosec products of the week: November 11, 2022. (to the original material)
- API abuses and attacks create new challenges for retailers. (to the original material)
- The Week in Ransomware - November 11th 2022 - LockBit feeling the heat. (to the original material)
- Microsoft Defender network protection generally available on iOS, Android. (to the original material)
- Canadian food retail giant Sobeys hit by Black Basta ransomware. (to the original material)
- U.S. seized 18 web domains used for recruiting money mules. (to the original material)
- New BadBazaar Android malware linked to Chinese cyberspies. (to the original material)
- Microsoft confirms gaming performance issues on Windows 11 22H2. (to the original material)
- Royal Mail down: Tracking unavailable as outage exceeds 24 hours. (to the original material)
- Make Way for an Adaptive Cybersecurity Ecosystem. (to the original material)
- Ukrainian Cyber Police Bust Fake Investing Ring. (to the original material)
- Texas Hospital Says Ransomware Breach Affected 500,000. (to the original material)
- ISMG Editors: $3B Crypto Seizure Shows Blockchain's Security. (to the original material)
- Australia Blames Russian Hackers for Medibank Hack. (to the original material)
- Should Banks Be Held Liable for Authorized Fraud? (to the original material)
- Snow Software enhances platform for greater visibility into containers, cloud services. (to the original material)
- Despite staff and budgets, most firms say ‘lack of skills’ biggest threat intel challenge. (to the original material)
- VMDR: What it is, and how it fits into cloud-native infrastructure and applications. (to the original material)
- What is SASE? (to the original material)
- Forrester: MDR, threat hunting and cybersecurity as a service. (to the original material)
- The state of ransomware in state and local government. (to the original material)
- The top six goals for proactive cybersecurity. (to the original material)
- An initial access broker claims to have hacked Deutsche Bank. (to the original material)
- Long-running surveillance campaigns target Uyghurs with BadBazaar and MOONSHINE spyware. (to the original material)
- Man charged for role in LockBit ransomware operation. (to the original material)
- Researcher received a $70k award for a Google Pixel lock screen bypass. (to the original material)
- Russia-linked IRIDIUM APT linked to Prestige ransomware attacks against Ukraine. (to the original material)
- Cryptojacking malware sees a 230 percent increase in 2022. (to the original material)
- How fake data can help to combat breaches [Q&A]. (to the original material)
- Hackers prey on holiday MFA fatigue. (to the original material)
- Security challenges facing SMBs – Week in security with Tony Anscombe. (to the original material)
- FIFA World Cup 2022 scams: Beware of fake lotteries, ticket fraud and other cons. (to the original material)
- Black Friday Tips: How to Protect Yourself from Cybercriminals. (to the original material)
- Experts Uncover Two Long-Running Android Spyware Campaigns Targeting Uyghurs. (to the original material)
- Malicious Google Play Store App Spotted Distributing Xenomorph Banking Trojan. (to the original material)
- Multiple High-Severity Flaws Affect Widely Used OpenLiteSpeed Web Server Software. (to the original material)
- Russian-Canadian National Charged Over Involvement in LockBit Ransomware Attacks. (to the original material)
- Microsoft Blames Russian Hackers for Prestige Ransomware Attacks on Ukraine and Poland. (to the original material)
- Details
- Written by: Merticaru Dorin Nicolae
- Category: Cyber Security News
- Hits: 212
- Press release: The #SigurantaOnline digital education campaign has reached schools. (to the original material)
- Cybersecurity news of the week (11/10/2022). (to the original material)
- Completion of training courses for certification within the project «Increasing the capacity of the competent authorities in Romania DNSC and RENAR according to the European Regulation on Cybersecurity 2019/881 (Cybersecurity Act)». (to the original material)
- CISA Releases SSVC Methodology to Prioritize Vulnerabilities. (to the original material)
- Cisco Releases Security Updates for Multiple Products. (to the original material)
- CISA Releases Twenty Industrial Control Systems Advisories. (to the original material)
- CISA Updates Advisory on Threat Actors Exploiting Multiple CVEs Against Zimbra Collaboration Suite. (to the original material)
- Security leaders want consequences for insecure code. (to the origina material)
- How ransomware gangs and malware campaigns are changing. (to the original material)
- Phishing drops IceXLoader malware on thousands of home, corporate devices. (to the original material)
- Microsoft fixes Windows zero-day bug exploited to push malware. (to the original material)
- US Health Dept warns of Venus ransomware targeting healthcare orgs. (to the original material)
- Russian military hackers linked to ransomware attacks in Ukraine. (to the original material)
- Worok hackers hide new malware in PNGs using steganography. (to the original material)
- Kaspersky to kill its VPN service in Russia next week. (to the original material)
- FBI warns scammers now impersonate refund payment portals. (to the original material)
- Ukraine arrests fraud ring members who made €200 million per year. (to the original material)
- Russian LockBit ransomware operator arrested in Canada. (to the original material)
- An $8 mess - Twitter Blue 'verified' accounts push crypto scams. (to the original material)
- Accused LockBit Ransomware Operator Arrested in Canada. (to the original material)
- Federal Judge Skeptical of Facebook in Patient Privacy Suit. (to the original material)
- Twitter Ramps Up Regulatory Exposure After Loss of CISO. (to the original material)
- Exploring the Consequences of Not Paying a Ransom. (to the original material)
- Australia Faces Consequences of Standing Up to Ransomware. (to the original material)
- Nearly 80% of companies in new survey have had to use their cyber insurance. (to the original material)
- Three ways security teams can foster open-source innovation. (to the original material)
- Apple out-of-band patches fix remote code execution bugs in iOS and macOS. (to the original material)
- Researchers warn of malicious packages on PyPI using steganography. (to the original material)
- A bug in ABB Totalflow flow computers exposed oil and gas companies to attack. (to the original material)
- APT29 abused the Windows Credential Roaming in an attack against a diplomatic entity. (to the original material)
- Lenovo warns of flaws that can be used to bypass security features. (to the original material)
- Top 12 Website Hardening Tips. (to the original material)
- SMB's security spending is not keeping up with threats. (to the original material)
- Cyber threat activity continues to grow in Q3. (to the original material)
- Threat intelligence adoption grows but skills lag behind. (to the original material)
- Email is the top vector for cyberattacks. (to the original material)
- Four out of 10 work emails are unwanted. (to the original material)
- Fake financial regulators. (to the original material)
- Toward the cutting edge: SMBs contemplating enterprise security. (to the original material)
- Warning: New Massive Malicious Campaigns Targeting Top Indian Banks' Customers. (to the original material)
- Hacker Rewarded $70,000 for Finding Way to Bypass Google Pixel Phones' Lock Screens. (to the original material)
- Researchers Uncover PyPI Package Hiding Malicious Code Behind Image File. (to the original material)
- Is Cybersecurity Awareness Month Anything More Than PR? (to the original material)
- Citrix Issues Patches for Critical Flaw Affecting ADC and Gateway Products. (to the original material)
- High-Severity Flaw Reported in Critical System Used by Oil and Gas Companies. (to the original material)
- Re-Focusing Cyber Insurance with Security Validation. (to the original material)
- New UEFI Firmware Flaws Reported in Several Lenovo Notebook Models. (to the original material)
- Details
- Written by: Merticaru Dorin Nicolae
- Category: Cyber Security News
- Hits: 197
- Microsoft Releases November 2022 Security Updates. (to the original material)
- VMware Releases Security Updates. (to the original material)
- Citrix Releases Security Updates for ADC and Gateway. (to the original material)
- Threat Spotlight: Cyber Criminal Adoption of IPFS (InterPlanetary File System) for Phishing, Malware Campaigns. (to the original material)
- 10 common security mistakes and how to avoid them. (to the original material)
- Security “sampling” puts US federal agencies at risk. (to the original material)
- 2022 Cloud Data Security Report. (to the original material)
- Experts observed Amadey malware deploying LockBit 3.0 Ransomware. (to the original material)
- Microsoft Patch Tuesday updates fix 6 actively exploited zero-days. (to the original material)
- VMware fixes three critical flaws in Workspace ONE Assist. (to the original material)
- New StrelaStealer malware steals your Outlook, Thunderbird accounts. (to the original material)
- Couple sentenced to prison for trying to sell nuclear warship secrets. (to the original material)
- New hacking group uses custom 'Symatic' Cobalt Strike loaders. (to the original material)
- 15,000 sites hacked for massive Google SEO poisoning campaign. (to the original material)
- Medibank warns customers their data was leaked by ransomware gang. (to the original material)
- Lenovo fixes flaws that can be used to disable UEFI Secure Boot. (to the original material)
- IT Army of Ukraine Targets Russian Banks. (to the original material)
- Could a Digital Red Cross Protect Hospitals From Ransomware? (to the original material)
- Microsoft Patches ProxyNotShell Exchange Vulnerabilities. (to the original material)
- The Role of Cybersecurity in the Russia-Ukraine War. (to the original material)
- The Riskiest Connected Devices in Healthcare. (to the original material)
- Security updates released for critical bugs in VMware’s Workspace ONE Assist. (to the original material)
- Malicious ‘Cloud9’ Chrome extension operates like a remote access trojan. (to the original material)
- Lacework adds new analysis, scanning capabilities to its Polygraph Data Platform. (to the original material)
- How to address the gaps with Open XDR sensors. (to the original material)
- The Rise of the Police-Advertiser. (to the original material)
- Sacramento County Resident Joins EFF Lawsuit After Illegal Sharing of His Electricity Usage Data Makes Him a Target of Law Enforcement. (to the original material)
- APT29 Exploited a Windows Feature to Compromise European Diplomatic Entity Network. (to the original material)
- Several Cyber Attacks Observed Leveraging IPFS Decentralized Network. (to the original material)
- Experts Warn of Browser Extensions Spying On Users via Cloud9 Chrome Botnet Network. (to the original material)
- Top 5 API Security Myths That Are Crushing Your Business. (to the original material)
- New IceXLoader Malware Loader Variant Infected Thousands of Victims Worldwide. (to the original material)
- VMware Warns of 3 New Critical Flaws Affecting Workspace ONE Assist Software. (to the original material)
- Install Latest Windows Update ASAP! Patches Issued for 6 Actively Exploited Zero-Days. (to the original material)
- Only a quarter of businesses have confidence ex-employees can no longer access infrastructure. (to the original material)
- Sensitive data and digital transformation make public housing a prime target for cyberthreats. (to the original material)
- Details
- Written by: Merticaru Dorin Nicolae
- Category: Cyber Security News
- Hits: 205
- CISA Adds Seven Known Exploited Vulnerabilities to Catalog. (to the original material)
- Emotet coming in hot. (to the original material)
- Gartner 2022 security trend #4: Distributing decisions. (to the original material)
- Application security finally getting its due. (to the original material)
- Massive ois[.]is Black Hat Redirect Malware Campaign. (to the original material)
- 12 percent of employees take IP with them when leaving a job. (to the original material)
- Microsoft fixes many zero-days under attack. (to the original material)
- Malicious droppers on Google Play deliver banking malware to victims. (to the original material)
- How geopolitical turmoil changed the cybersecurity threat landscape. (to the original material)
- How micro-VMs can protect your most vulnerable endpoints. (to the original material)
- LockBit affiliate uses Amadey Bot malware to deploy ransomware. (to the original material)
- Malicious extension lets attackers control Google Chrome remotely. (to the original material)
- VMware fixes three critical auth bypass bugs in remote access tool. (to the original material)
- Microsoft fixes ProxyNotShell Exchange zero-days exploited in attacks. (to the original material)
- Microsoft November 2022 Patch Tuesday fixes 6 exploited zero-days, 68 flaws. (to the original material)
- Citrix urges admins to patch critical ADC, Gateway auth bypass. (to the original material)
- Influencer 'Hushpuppi' gets 11 years in prison for cyber fraud. (to the original material)
- Enhance your privacy with this second phone number app deal. (to the original material)
- EU Complicit in Spread of Advanced Spyware, Charges Veld. (to the original material)
- Feds Warn of Iranian Threats to Healthcare Sector. (to the original material)
- China Likely Amasses Zero-Days Via Vulnerability Disclosure Law. (to the original material)
- Why Today's Cyber Defense Requires Offensive Thinking. (to the original material)
- Who Is Extorting Australian Health Insurer Medibank? (to the original material)
- Citrix ADC and Citrix Gateway are affected by a critical authentication bypass flaw. (to the original material)
- SmokeLoader campaign distributes new Laplas Clipper malware. (to the original material)
- Medibank confirms ransomware attack impacting 9.7M customers, but doesn’t pay the ransom. (to the original material)
- US DoJ seizes $3.36B Bitcoin from Silk Road hacker. (to the original material)
- Snowflake formalizes integration with Streamlit, making it possible to build cloud apps with Python. (to the original material)
- Vast majority of SMBs are concerned about a ransomware attack on their business. (to the original material)
- The path to secure cloud migration. (to the original material)
- Six ways healthcare organizations can improve connected device security. (to the original material)
- The Filter Mandate Bill Is a Privacy and Security Mess. (to the original material)
- Politicians Still Underestimate Smart Cars’ Threat to Privacy. (to the original material)
- Amadey Bot Spotted Deploying LockBit 3.0 Ransomware on Hacked Machines. (to the original material)
- New Laplas Clipper Malware Targeting Cryptocurrency Users via SmokeLoader. (to the original material)
- U.S. Seizes Over 50K Bitcoin Worth $3.3 Billion Linked to Silk Road Dark Web. (to the original material)
- 5 Reasons to Consolidate Your Tech Stack. (to the original material)
- Thermal imaging attacks. (to the original material)